package cn.ncist.health_backend.handler;

import cn.ncist.common.RespResult;
import com.fasterxml.jackson.databind.ObjectMapper;
import org.springframework.security.access.AccessDeniedException;
import org.springframework.security.web.access.AccessDeniedHandler;
import org.springframework.stereotype.Component;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import java.io.IOException;

@Component
public class CustomAccessDeniedHandler implements AccessDeniedHandler {
    @Override
    public void handle(HttpServletRequest request, HttpServletResponse response, AccessDeniedException accessDeniedException) throws IOException, ServletException {
        if (accessDeniedException != null){
            RespResult respResult = new RespResult(false,"没有权限");
            //设置响应头
            response.setContentType("application/json;charset=utf-8");

            //认证信息存到redis........

            //restult转json
             response.getWriter().write(new ObjectMapper().writeValueAsString(respResult));
        }
    }
}
